Vulnerability in Giskard-ai Giskard
CVE-2024-52524
Giskard is an evaluation and testing framework for AI systems. A Remote Code Execution (ReDoS) vulnerability was discovered in Giskard component by the GitHub Security Lab team. When processing datasets with specific text patterns with Gis…
Vulnerability class: ReDoS (Regular Expression Denial of Service)
EPSS: 0.008 (51.4th percentile) — read the EPSS interpretation.
Affected products
- Giskard-ai Giskard — versions < 2.15.5
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)